{"id":165,"date":"2023-07-02T13:28:18","date_gmt":"2023-07-02T05:28:18","guid":{"rendered":"http:\/\/keysolutions.cn\/?p=165"},"modified":"2024-04-12T11:30:19","modified_gmt":"2024-04-12T03:30:19","slug":"facebook%e6%95%b0%e6%8d%ae%e4%bf%9d%e6%8a%a4%e8%af%84%e4%bc%b0-%e4%b9%8b-%e5%ba%94%e7%94%a8%e5%92%8c%e7%b3%bb%e7%bb%9f%e7%9a%84%e6%bc%8f%e6%b4%9e%e5%92%8c%e5%ae%89%e5%85%a8%e9%97%ae%e9%a2%98","status":"publish","type":"post","link":"http:\/\/keysolutions.cn\/?p=165","title":{"rendered":"Facebook\u6570\u636e\u4fdd\u62a4\u8bc4\u4f30 \u4e4b \u5e94\u7528\u548c\u7cfb\u7edf\u7684\u6f0f\u6d1e\u548c\u5b89\u5168\u95ee\u9898"},"content":{"rendered":"\n
\"\"<\/figure>\n\n\n\n
\n

<\/p>\n\u4f60\u662f\u5426\u4f1a\u81f3\u5c11\u6bcf 12 \u4e2a\u6708\u68c0\u6d4b\u4f60\u7684\u5e94\u7528\u548c\u7cfb\u7edf\u662f\u5426\u5b58\u5728\u6f0f\u6d1e\u548c\u5b89\u5168\u95ee\u9898<\/a>\uff1f\uff08\u4f8b\u5982\uff0c\u4f60\u662f\u5426\u624b\u52a8\u6267\u884c\u6e17\u900f\u6d4b\u8bd5\uff1f\uff09<\/cite><\/blockquote>\n\n\n\n

\u8fd9\u4e2a\u95ee\u9898\u9009\u201c\u662f\u201d\uff0c\u5bf9\u4e8e\u5355\u673a\u548c\u975e\u5355\u673a\u5e94\u7528\u6216\u6e38\u620f\u6765\u8bb2\u4e5f\u662f\u4e00\u6837\u7684\uff0c\u6211\u4e0d\u77e5\u9053FB\u5f04\u4e2a\u201c\u5426\u201d\u7684\u9009\u9879\u662f\u51e0\u4e2a\u610f\u601d\uff0c\u4e5f\u4e0d\u77e5\u9053\u9009\u201c\u5426\u201d\u7684\u540e\u679c\u3002<\/p>\n\n\n\n

\u63a5\u4e0b\u6765\u8981\u63d0\u4f9b\u6750\u6599\u8bc1\u636e\uff1a<\/p>\n\n\n\n

\n

<\/p>\n\u8bf7\u540c\u65f6\u4e0a\u4f20\u4ee5\u4e0b\u6750\u6599\uff1a
\u663e\u793a\u8fc7\u53bb 12 \u4e2a\u6708\u5185\u8fd0\u884c\u7684\u6e17\u900f\u6d4b\u8bd5\u6216\u6f0f\u6d1e\u626b\u63cf\u7ed3\u679c\u7684\u6587\u4ef6\u3002\u6587\u4ef6\u6216\u622a\u56fe\u5fc5\u987b\u5305\u62ec\u6d4b\u8bd5\u8303\u56f4\u3001\u6d4b\u8bd5\u65e5\u671f\u4ee5\u53ca\u6d4b\u8bd5\u671f\u95f4\u53d1\u73b0\u7684\u4efb\u4f55\u6f0f\u6d1e\u7684\u6458\u8981\u6216\u5217\u8868\u3002
\u76f8\u5173\u653f\u7b56\u6216\u7a0b\u5e8f\uff0c\u8bf4\u660e\u4f60\u8fc7\u53bb 12 \u4e2a\u6708\u5185\u4e3a\u68c0\u6d4b\u6f0f\u6d1e\u548c\u5b89\u5168\u95ee\u9898\u800c\u4f7f\u7528\u7684\u6d4b\u8bd5\u6d41\u7a0b\u3002\u8bf7\u53c2\u9605\u6570\u636e\u5b89\u5168\u8981\u6c42\u6307\u5357\uff0c\u8be6\u7ec6\u4e86\u89e3\u5982\u4f55\u4e0a\u4f20\u5408\u9002\u7684\u8bc1\u636e\u3002<\/a>\u8bf7\u786e\u4fdd\u6587\u4ef6\u672a\u8bbe\u5bc6\u7801\u4fdd\u62a4\u3002\u4f60\u53ef\u4ee5\u4e0a\u4f20\u591a\u4e2a\u6587\u4ef6\uff0c\u6bcf\u4e2a\u6700\u5927 2 GB\u3002\u6211\u4eec\u652f\u6301\u7684\u6587\u4ef6\u683c\u5f0f\u6709\uff1a.xls\uff0c.xlsx\uff0c.csv\uff0c.doc\uff0c.docx\uff0c.pdf\uff0c.txt\uff0c.jpeg\uff0c.jpg\uff0c.png\uff0c.ppt\uff0c.pptx\uff0c.mov\uff0c.mp4\uff0c.zip \u548c .zipx\u3002<\/cite><\/blockquote>\n\n\n\n

\u7b2c\u4e00\u6b21\u56de\u7b54\uff0c\u6211\u4e0a\u4f20\u4e86APP\u53d1\u7248\u5386\u53f2\u8bb0\u5f55\u3001AWS\u548c\u963f\u91cc\u4e91\u4e0a\u7684\u6f0f\u6d1e\u626b\u63cf\u7ed3\u679c\u4ee5\u53ca\u5bf9\u5e94\u5904\u7406\u7ed3\u679c\u622a\u56fe\uff0c\u4f46\u6536\u5230\u4e86FB\u5ba1\u67e5\u5458\u9700\u8981\u66f4\u591a\u4fe1\u606f\u7684\u56de\u590d\uff1a<\/p>\n\n\n\n

\n

<\/p>\nThank you for your response but we need more information. Can you please provide documentation that shows the results of a penetration test or a vulnerability scan run within the last 12 months. Documents or screenshots must include the scope of the test, the date of the test, and a summary or a listing of any vulnerabilities discovered during the test. Additionally, can you please provide a policy or procedure that describes your testing process for detecting vulnerabilities and security issues used within the last 12 months. Please see FAQ here: https:\/\/developers.facebook.com\/docs\/development\/maintaining-data-access\/data-protection-assessment\/data-security#reqs-test-app-sys<\/cite><\/blockquote>\n\n\n\n

\u539f\u6765\u5fd8\u4e86\u628a\u6d4b\u8bd5\u65f6\u95f4\u622a\u56fe\u8fdb\u53bb\u4e86\uff0c\u4e0a\u9762\u4e5f\u8bf4\u7f3a\u5c11\u653f\u7b56\u6587\u6863\u3002<\/p>\n\n\n\n

\u8fd9\u6b21\u56de\u590d\u4e0a\u4f20\u4e86\u4e00\u5f20\u5305\u542b\u6709\u6f0f\u6d1e\u6d4b\u8bd5\u65f6\u95f4\u7684\u622a\u56fe\u3001\u4e00\u4efd\u5173\u4e8e\u6253\u8865\u4e01\u7684\u653f\u7b56\u89c4\u8303\u6587\u6863\u3001\u4e00\u4efd\u6f0f\u6d1e\u626b\u63cf\u7684\u89c4\u8303\u6587\u6863\u3002<\/p>\n\n\n\n

\u7b49\u4e86\u4e00\u4e2a\u534a\u6708\uff0c\u6536\u5230\u4e86\u4ee5\u4e0b\u56de\u590d\uff1a<\/p>\n\n\n\n

\n

<\/p>\nQ12 – Please provide implementation evidence as mentioned below, Implementation Evidence – Please provide implementation evidence showing a Penetration-test or static analysis (SAST scan etc.) report showing the scope and date of the scan along with the vulnerability count and categorization (Critical\/High\/Medium\/Low etc.). Please note that all critical\/high vulnerability identified in the scan should be remediated.<\/cite><\/blockquote>\n\n\n\n

\u8981\u6c42\u63d0\u4f9b\u8be6\u7ec6\u7684\u6f0f\u6d1e(\u9ad8\u4e2d\u4f4e)\u62a5\u544a\u3001\u4ee5\u53ca\u4fee\u590d\u9ad8\u5371\u6f0f\u6d1e(\u5982\u679c\u6709)\u3002\u6309\u7167\u8981\u6c42\uff0c\u53c8\u4e0a\u4f20\u4e86\u4e00\u4e9b\u6f0f\u6d1e\u626b\u63cf\u622a\u56fe\u3002<\/p>\n\n\n\n

\u63d0\u4ea4\u4e86\u4e00\u6bb5\u65f6\u95f4\u540e\uff0c\u6536\u5230\u4e86\u56de\u590d\uff1a<\/p>\n\n\n\n

\n

<\/p>\nThanks for the response. Note that we are not accepting AWS inspector for this requirement. We still require testing your app for security and vulnerability issues. Please attach implementation proof in the form of a vulnerability scan with a date showing within the last 12 months, with a clear scope mentioned as well as a vulnerability breakdown report that shows no high or critical vulnerabilities. These tests can come in the form of external penetration tests or static code analyses. Remember to redact sensitive details from your evidence before uploading it to us For further guidance, please reference the below document which highlights acceptable evidence and policy requirements related to each question: https:\/\/developers.facebook.com\/docs\/development\/maintaining-data-access\/data-protection-assessment\/data-security#redact-evidence<\/cite><\/blockquote>\n\n\n\n

\u4ed6\u56de\u590d\u91cc\u8bf4\uff0c\u4e91\u63d0\u4f9b\u5546\u4e0a\u7684\u6f0f\u6d1e\u622a\u56fe\u4e0d\u63a5\u53d7\uff0c\u8ba9\u6211\u4eec\u4f7f\u7528\u5916\u90e8\u5de5\u5177\u8fdb\u884c\u6e17\u900f\u6d4b\u8bd5\u548c\u9759\u6001\u5206\u6790\uff0c\u7136\u540e\u8f93\u51fa\u62a5\u544a\u3002\u771f\u65e0\u8bed\uff01<\/p>\n\n\n\n

\u7f51\u4e0a\u627e\u4e86\u4e00\u4e2a\u6bd4\u8f83\u6d41\u884c\u7684\u6f0f\u6d1e\u626b\u63cf\u5de5\u5177\uff0c\u6ce8\u518c\u548c\u5b89\u88c5\u82b1\u4e86\u6211\u51e0\u4e2a\u5c0f\u65f6\u65f6\u95f4\uff0c\u7b49\u5de5\u5177\u626b\u63cf\u5b8c\uff0c\u8f93\u51fa\u62a5\u544a\u53c8\u7b49\u4e86\u51e0\u4e2a\u5c0f\u65f6\uff0c\u6298\u817e\u4e86\u4e00\u5929\u7ec8\u4e8e\u628a\u62a5\u544a\u548c\u622a\u56fe\u5f04\u5b8c\u5e76\u4e0a\u4f20\u7ed9FB\u3002\u4ec5\u8fc7\u4e24\u5929\u5c31\u6536\u5230\u4e86\u597d\u6d88\u606f\uff1a<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

\u8ddf\u7740\u5ba1\u67e5\u5458\u7684\u56de\u590d\u5404\u4e2a\u51fb\u7834\uff0c\u662f\u76ee\u524d\u6211\u7528\u7684\u65b9\u6cd5\uff0c\u4f46\u6bd4\u8f83\u8017\u65f6\u8017\u529b\uff0c\u6709\u65f6\u4e00\u4e2a\u95ee\u9898\u7684\u56de\u7b54\u548c\u8bc1\u636e\u6536\u96c6\u5f97\u82b1\u6211\u4e00\u5929\u751a\u81f3\u4e24\u5929\u7684\u65f6\u95f4\u3002<\/p>\n\n\n\n

\u8054\u7cfb\u90ae\u7bb1\uff1a keysolutions@foxmail.com<\/p>\n","protected":false},"excerpt":{"rendered":"

\u4f60\u662f\u5426\u4f1a\u81f3\u5c11\u6bcf 12 \u4e2a\u6708\u68c0\u6d4b\u4f60\u7684\u5e94\u7528\u548c\u7cfb\u7edf\u662f\u5426\u5b58\u5728\u6f0f\u6d1e\u548c\u5b89\u5168\u95ee\u9898\uff1f\uff08\u4f8b\u5982\uff0c\u4f60\u662f\u5426\u624b\u52a8\u6267\u884c\u6e17\u900f\u6d4b\u8bd5\uff1f\uff09 \u8fd9\u4e2a\u95ee\u9898\u9009\u201c\u662f\u201d\uff0c\u5bf9\u4e8e\u5355\u673a\u548c\u975e\u5355\u673a\u5e94\u7528\u6216\u6e38\u620f\u6765\u8bb2\u4e5f\u662f\u4e00\u6837\u7684\uff0c\u6211\u4e0d\u77e5\u9053FB\u5f04\u4e2a\u201c\u5426\u201d\u7684\u9009\u9879\u662f\u51e0\u4e2a\u610f...<\/p>\n","protected":false},"author":1,"featured_media":171,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[3],"tags":[6,7,10,26],"_links":{"self":[{"href":"http:\/\/keysolutions.cn\/index.php?rest_route=\/wp\/v2\/posts\/165"}],"collection":[{"href":"http:\/\/keysolutions.cn\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/keysolutions.cn\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/keysolutions.cn\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/keysolutions.cn\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=165"}],"version-history":[{"count":8,"href":"http:\/\/keysolutions.cn\/index.php?rest_route=\/wp\/v2\/posts\/165\/revisions"}],"predecessor-version":[{"id":479,"href":"http:\/\/keysolutions.cn\/index.php?rest_route=\/wp\/v2\/posts\/165\/revisions\/479"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/keysolutions.cn\/index.php?rest_route=\/wp\/v2\/media\/171"}],"wp:attachment":[{"href":"http:\/\/keysolutions.cn\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=165"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/keysolutions.cn\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=165"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/keysolutions.cn\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=165"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}